Skip to content

Audit

Audit #81

Workflow file for this run

---
name: "Audit"
on: # yamllint disable-line rule:truthy
push:
pull_request:
schedule:
- cron: "0 0 * * 1"
jobs:
Audit:
runs-on: "ubuntu-24.04"
steps:
- uses: actions/setup-go@v5
with:
go-version: '1.23.3'
- uses: "actions/checkout@v4"
- run: "sudo apt-get update"
- run: "sudo apt-get install -y cargo curl"
- run: "curl -LO https://downloads.snyk.io/cli/stable/snyk-linux"
- run: "sudo cp snyk-linux /bin/snyk"
- run: "sudo chmod a+x /bin/snyk"
- run: "make -j 4 go"
#
# Docker-in-Docker GitHub Actions setup required for docker scout SAC.
#
# Disabling (GitHub Actions Hosted) Docker Scout runner step for now.
# Care when merging pull requests.
# In any case, all CI/CD jobs can be peformed locally.
#
- run: "mage govulncheck snyk"
env:
SNYK_TOKEN: "${{ secrets.SNYK_TOKEN }}"